Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/a5/703902-7061-4ecb-9df1-c45620326491/1/xZKgYJDwFpQNMesbCbrhLZSxlbA.mft
File: xZKgYJDwFpQNMesbCbrhLZSxlbA.mft (raw, json)
Hash identifier: XBYxyfgR08ddD8YJaEU4TYTep1oD0LSp9Mq1V4pPNIw=
Subject key identifier: 35:58:54:9A:F1:D4:0C:86:37:97:88:C0:8C:41:71:E1:2F:60:5B:FA
Authority key identifier: C5:92:A0:60:90:F0:16:94:0D:31:EB:1B:09:BA:E1:2D:94:B1:95:B0
Certificate issuer: /CN=c592a06090f016940d31eb1b09bae12d94b195b0
Certificate serial: 0196CD61AD2285990157A3AD126022120157
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/xZKgYJDwFpQNMesbCbrhLZSxlbA.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/a5/703902-7061-4ecb-9df1-c45620326491/1/xZKgYJDwFpQNMesbCbrhLZSxlbA.mft
Manifest number: 041C
Signing time: Wed 14 May 2025 06:00:52 +0000
Manifest this update: Wed 14 May 2025 06:00:52 +0000
Manifest next update: Thu 15 May 2025 06:00:52 +0000
Files and hashes: 1: tOD7ZPqas8UpTT4bdLzx0MJD5rk.roa (hash: k/eXxf7557SFB+l+Q/mWhChu1kZsTZ07A3b0mG1jAsA=)
2: xZKgYJDwFpQNMesbCbrhLZSxlbA.crl (hash: AUT9Q/3j0UprV7ParNqFpJZ6qvJ7qx5Ys8v3/8wxTIY=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/a5/703902-7061-4ecb-9df1-c45620326491/1/xZKgYJDwFpQNMesbCbrhLZSxlbA.crl
rsync://rpki.ripe.net/repository/DEFAULT/a5/703902-7061-4ecb-9df1-c45620326491/1/xZKgYJDwFpQNMesbCbrhLZSxlbA.mft
rsync://rpki.ripe.net/repository/DEFAULT/xZKgYJDwFpQNMesbCbrhLZSxlbA.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Thu 15 May 2025 06:00:52 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:cd:61:ad:22:85:99:01:57:a3:ad:12:60:22:12:01:57
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=c592a06090f016940d31eb1b09bae12d94b195b0
Validity
Not Before: May 14 06:00:52 2025 GMT
Not After : May 15 06:00:52 2025 GMT
Subject: CN=3558549af1d40c86379788c08c4171e12f605bfa
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:87:b1:b0:73:f8:44:62:83:f5:0f:b3:0c:7d:22:
c5:99:3a:ec:0b:33:74:0f:13:da:d3:ca:16:6b:f9:
04:86:a3:80:f3:79:34:3f:b6:13:be:74:07:f8:d6:
e2:ee:35:eb:bd:3d:bd:55:f3:b7:58:ca:49:60:6c:
b9:b1:7a:f8:50:35:9f:0c:f9:79:fb:2e:43:7e:24:
08:c2:04:1a:91:20:ba:40:a3:77:bb:e7:fe:ab:ce:
0f:bc:16:aa:c0:50:e8:2d:9b:6e:09:f5:ed:e1:e6:
02:5c:1d:5d:cb:dc:ad:a5:c3:b2:63:1a:35:21:b1:
78:29:38:77:ef:21:6c:ec:0c:e8:71:f8:a9:c4:d4:
3a:17:ae:81:48:7a:83:ad:7a:93:7b:3f:47:2e:44:
88:1c:f4:bc:2d:f5:0c:e1:1a:2c:ac:85:e7:f4:56:
21:b3:7a:dd:56:77:76:8e:d9:97:b7:69:0f:cc:cd:
77:81:20:2f:90:75:3e:dd:0c:b5:c5:85:46:e0:d2:
5d:53:dc:6a:ef:a8:35:e2:8a:ee:e6:aa:93:21:9f:
1c:a5:b5:a8:09:8f:bd:bf:35:be:d4:48:73:a2:df:
ab:96:04:bd:22:2e:79:88:5d:60:93:fd:ba:83:17:
83:d4:6f:20:49:3e:1b:8b:7a:bf:a9:2c:9f:1d:c0:
26:0d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
35:58:54:9A:F1:D4:0C:86:37:97:88:C0:8C:41:71:E1:2F:60:5B:FA
X509v3 Authority Key Identifier:
keyid:C5:92:A0:60:90:F0:16:94:0D:31:EB:1B:09:BA:E1:2D:94:B1:95:B0
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/xZKgYJDwFpQNMesbCbrhLZSxlbA.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/a5/703902-7061-4ecb-9df1-c45620326491/1/xZKgYJDwFpQNMesbCbrhLZSxlbA.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/a5/703902-7061-4ecb-9df1-c45620326491/1/xZKgYJDwFpQNMesbCbrhLZSxlbA.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
bb:ac:63:85:53:67:85:93:d6:66:bf:68:d8:dd:26:01:d3:29:
63:77:8f:70:83:98:98:ae:a0:f4:42:7c:77:86:e9:66:75:76:
86:ff:be:bb:43:67:a2:96:41:3e:fb:b6:4c:06:47:c7:3f:d8:
8e:58:03:73:bf:c5:d5:52:30:6f:bd:6a:e9:b0:04:05:95:6e:
bb:09:97:50:0d:fa:27:49:45:e6:79:22:27:90:c6:7d:ff:01:
d7:5a:8f:da:ea:79:4d:af:1d:6f:94:d7:a8:73:35:9e:b0:6e:
00:48:e2:92:bb:01:ea:f9:f9:b9:29:66:66:4a:c1:e3:3c:ad:
a8:ca:09:8e:e6:fc:66:c5:96:92:ad:e9:9a:fb:13:49:b7:38:
36:25:6f:80:fa:e6:a9:63:6b:c0:fc:dd:28:6b:dc:e2:e7:fb:
a6:1f:3b:eb:f5:41:7a:38:1d:d8:ba:db:0b:9c:b2:de:cb:a2:
34:e3:ac:2e:98:a4:8a:6d:f7:e9:10:42:45:45:2f:a3:65:37:
84:10:ae:f1:4d:1e:c9:32:db:a2:1b:1b:2f:9e:4d:f7:cd:04:
11:54:97:82:d2:95:74:9e:c5:e3:4a:24:8b:f0:19:5e:ba:ba:
52:bc:54:4e:98:18:f2:b0:97:cf:c7:27:a7:4b:49:36:0c:2a:
f4:24:10:71
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed May 14 12:28:29 2025 by rpki-client